VirSCAN VirSCAN

1, คุณสามารถอัพโหลดไฟล์ไดๆก็ได้ที่มีขนาดไม่ใหญ่กว่า 20 เมกกะไบต์
2, VirSCAN สามารถสแกนไฟล์ที่ถูกบีบอัดในรูปแบบของ ZIP และ RAR โดยจะต้องมีไฟล์ในนั้นไม่สูงกว่า 20 ไฟล์
3, VirSCAN สามารถสแกนไฟล์บีบอัดที่มีรหัสผ่านด้วยคำว่า 'infected' และ 'virus' ได้

ภาษา
การทำงานของเซิฟเวอร์
Server Load
6650d1ab54c2c63e668ce499ef8e7b93    รายงานการวิเคราะห์แบบผสมผสาน
รายงานการสแกนหลายเครื่องของ Virscan.org
ข้อมูลพื้นฐาน
ชื่อไฟล์:6650d1ab54c2c63e668ce499ef8e7b93
ขนาดไฟล์:7162880
ประเภทไฟล์:PE32 executable (GUI) Intel 80386, for MS Windows
เวลาในการส่ง:2019-08-17 06:40:53
MD5:6650d1ab54c2c63e668ce499ef8e7b93
sha1:2496ef960a51c73483921b3467c6d9a617e03ddb
sha256:b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f
enviorment_description:Windows 7 32 bit (HWP Support)
total_processes:0
total_signatures:0
file_analysis: 0
mitre_attcks:0
รายงานการวิเคราะห์เอกสาร
uuid:java:java.util.UUID
xmlns:http://www.misp-project.org/
Event
id:8bdec2ff-0c05-4c2a-942e-2d0d3e86b9d9
date:2019-08-16
info:Falcon Sandbox auto-generated for \"b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f\"
analysis:2
distribution:1
published:1
Attribute
category:External analysis
type:link
value:https://www.hybrid-analysis.com/search?query=b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f
distribution:1
category:External analysis
type:comment
value:Falcon Sandbox v8.30 Copyright 2019 Hybrid Analysis GmbH, All Rights Reserved, www.payload-security.com
distribution:1
category:Payload delivery
type:filename|md5
value:b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f|6650d1ab54c2c63e668ce499ef8e7b93
distribution:1
category:Payload delivery
type:filename|sha1
value:b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f|2496ef960a51c73483921b3467c6d9a617e03ddb
distribution:1
category:Payload delivery
type:filename|sha256
value:b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f|b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f
distribution:1
category:Payload delivery
type:filename|sha512
value:b88fca335693416bf98d6f4922864abd9d8df24dd0c61f6e35137f7d16e4723f|f8f3a22a2e74ea512b3835cc7860f5300215abfeb004e0bbedb24b2d9e77db4cea1d2fb7f2ef1a881cffd65330b9253b889615e9d691d1d252ad9bceab4f34ec
distribution:1
category:Payload installation
type:filename|md5
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|a1311ae491fee6443b4a975f7bbef0a7
distribution:1
category:Payload installation
type:filename|sha1
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|86a93783d8aefb605717c361e830d6eff293826a
distribution:1
category:Payload installation
type:filename|sha256
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|9cce7f1db03c06b6f8f23964af0d19efabf0d42138925baa58d270d5f09f1286
distribution:1
category:Payload installation
type:filename|sha512
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|e3e30aac95547545c63b624186aebaeb1936be111006908a7e99143ffaabdb33cdfa5c1692aac0204a6cfee2aec924f33e91397276f2f38e401f334717d5d215
distribution:1
category:Payload installation
type:filename|md5
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|deafe2ca5575d52821856c246da4be80
distribution:1
category:Payload installation
type:filename|sha1
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|7e20b862991fcd1f952928b91e88b2c888c07c75
distribution:1
category:Payload installation
type:filename|sha256
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|e0a4c938505adee210063f5e29c0dd25515d11d307f74f53ad8ec6eba1b46deb
distribution:1
category:Payload installation
type:filename|sha512
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|a0d3317698b5182515a4bf5e42546fb82c53d5026c7b9b4b4d0c2f9961b202c9765e5d85b6d07f808f862dcb97380b133ff755da36d6d85b9887705c6ecc8bd2
distribution:1
category:Payload installation
type:filename|md5
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|0f46512ee3ffe529a13f7760ff706a63
distribution:1
category:Payload installation
type:filename|sha1
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|27dd76dc95f8150ad17192c09dca51b4403a274d
distribution:1
category:Payload installation
type:filename|sha256
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|9be48cd929aba2f769e4cf46718395f668c8f061d655f6fde7de2b57010aca62
distribution:1
category:Payload installation
type:filename|sha512
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|a6294446a6d0e67dde1ff2ea42fcdc4b5f996e0533a32aa29473b478e8e84275d036d645d6934c87dc22cfdda4b22d9ca61a874486614644a9d675c8fc0e948d
distribution:1
category:Payload installation
type:filename|md5
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|16c20d41eac9f824f86eede3bbb743dc
distribution:1
category:Payload installation
type:filename|sha1
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|740a325289aaa3eabb7db50abb58ffa58f2ab800
distribution:1
category:Payload installation
type:filename|sha256
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|aa2f8710a59f21516f7045d8b4c05cf3b7cf70272809dad5ac29ce0318ae1934
distribution:1
category:Payload installation
type:filename|sha512
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_64B923886D1A39F297AF03B67FFEE04B|e6c321b08ce046cd6a2a497ecd997283278517cd8cf44322679330b391ca13d59298ce14fb2293430627e35d33da777b47d4d69281d49e47c526a67ed2da12ad
distribution:1
category:Payload installation
type:filename|md5
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|f3aa366469481a8178b421ddfcf62d8a
distribution:1
category:Payload installation
type:filename|sha1
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|44ec91efa8e8043323601ef416bbc55362020610
distribution:1
category:Payload installation
type:filename|sha256
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|cbf73c159c479deb1ed1c6b27721c556316f2af2bd29dfe7937a42dc14b00a05
distribution:1
category:Payload installation
type:filename|sha512
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\Content\A053CFB63FC8E6507871752236B5CCD5_CB8562EE97E5966B47FE2328BA7AC79A|789ec3e070f8ae675af09bd0a17a9bfdcfc2fc264fea8c64a6d08393bbf8c5f2af33b420211e1277375d46e5a0a0197ca7fa6dc89ee5e152a540de55cd03de94
distribution:1
category:Payload installation
type:filename|md5
value:stats_1_.js|c61866ac3e8cb663f8b173b2ba47f18a
distribution:1
category:Payload installation
type:filename|sha1
value:stats_1_.js|5156586a2348cd7cbd5c22cb1347d671ac84039d
distribution:1
category:Payload installation
type:filename|sha256
value:stats_1_.js|bb307eff9da07933c13d1bdb234785f4f80db740b4266f1c3d9bf45ad297413a
distribution:1
category:Payload installation
type:filename|sha512
value:stats_1_.js|87dbdace60c8d190a4f008bb36debb7ebd2990e7d4cf161c23781774c16172b5a72717de9b7f824827cefc91359e44dc12948dc78055d0b8691afe72bbd3559b
distribution:1
category:Payload installation
type:filename|md5
value:tencent-kepler_1_.js|4c6a32010d49e0a87a606be4ec0e0c7b
distribution:1
category:Payload installation
type:filename|sha1
value:tencent-kepler_1_.js|8bda28216c347ebe7987b9c62a5d312c7db22b7a
distribution:1
category:Payload installation
type:filename|sha256
value:tencent-kepler_1_.js|1957f4dd384be3540b004f57b7d208689468fdca39b9e8709725130a0150f828
distribution:1
category:Payload installation
type:filename|sha512
value:tencent-kepler_1_.js|0008832793c9b05acdcd4b550911b37a5e786ed25700b1ee62d5d5fd26ff607dfaa72822cd7280bff6729c61369d338b14dd7e580fdfe0d5300b7c8aea754be0
distribution:1
category:Payload installation
type:filename|md5
value:login_1_.htm|06e110862b8cd5e6e1238058bdc4d3a1
distribution:1
category:Payload installation
type:filename|sha1
value:login_1_.htm|8058f7684e7ae7c76f5fe51ff299beb55e5c7265
distribution:1
category:Payload installation
type:filename|sha256
value:login_1_.htm|1d46563a4ee0f2b81400ff5ddcf912cb8bf17c3533be07f04ae062a3090e595c
distribution:1
category:Payload installation
type:filename|sha512
value:login_1_.htm|837843d9ab23f1b3f8b53a7185a9758591ba7d2c877d487bc2410196e479f3eb115112aefe329890df2b4fc19034db7176280277729fa9d18da836ad74107d20
distribution:1
category:Payload installation
type:filename|md5
value:%APPDATA%\Microsoft\Windows\Cookies\AXK3KH8K.txt|fc41c087c6c7b50719f6956ab71f3f4a
distribution:1
category:Payload installation
type:filename|sha1
value:%APPDATA%\Microsoft\Windows\Cookies\AXK3KH8K.txt|b8471c0222c9d61d71db94a23ad99642cd37b8cc
distribution:1
category:Payload installation
type:filename|sha256
value:%APPDATA%\Microsoft\Windows\Cookies\AXK3KH8K.txt|7c99fc7dd6c52eeffd8300e582fc487bd6a2dcef2b65cb6796579eab5fcae6b6
distribution:1
category:Payload installation
type:filename|sha512
value:%APPDATA%\Microsoft\Windows\Cookies\AXK3KH8K.txt|e92228d25e2e8a5ac85647c680ce1038256291cbb4a6e3f5c108e8a7e6acbf58b5595e75895e93b94b40f02387c2e6e6ed9a7d861bc8f784831223d13319e1b4
distribution:1
category:Payload installation
type:filename|md5
value:%APPDATA%\Microsoft\Windows\Cookies\6UT71NBQ.txt|bfe290ec74084ceb20b26e5da33d586d
distribution:1
category:Payload installation
type:filename|sha1
value:%APPDATA%\Microsoft\Windows\Cookies\6UT71NBQ.txt|e0de95d43b57b3ae38b6c6083b3f62820e757431
distribution:1
category:Payload installation
type:filename|sha256
value:%APPDATA%\Microsoft\Windows\Cookies\6UT71NBQ.txt|0bd0ca020797c30bac2bcd35bda043d2a343b294381e22644a07dac7fc818fbf
distribution:1
category:Payload installation
type:filename|sha512
value:%APPDATA%\Microsoft\Windows\Cookies\6UT71NBQ.txt|d110042cf39c9c1891dfd549c840c5c851cec7119a0cce6e6c3917bed5a856dcb77fe1956b0c123e917f43514c4655901ffb79464a65accb75a35ce526895f4c
distribution:1
category:Payload installation
type:filename|md5
value:stats_1_.htm|962506a99858b2e53afa9d51c302e4a9
distribution:1
category:Payload installation
type:filename|sha1
value:stats_1_.htm|5012714bafa6b7c5c74f37b6e2c63421e98d31c9
distribution:1
category:Payload installation
type:filename|sha256
value:stats_1_.htm|bf33826f30bdc3002eda3ca0e67965541901c24083f0f213a5df4ba697062b88
distribution:1
category:Payload installation
type:filename|sha512
value:stats_1_.htm|4c132b59f969435f1d4ddf3b583f0600b719f160306597439ab242b77cf2cc673816d8311f38b7bd90a7e567ed9a2d13bbf55808cd3769917cc91a323c448e21
distribution:1
category:Payload installation
type:filename|md5
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|6f40587a547bdc8252d7bfe013ec5fcd
distribution:1
category:Payload installation
type:filename|sha1
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|800f7abba9528c4799f15754414d2b551c14c4fc
distribution:1
category:Payload installation
type:filename|sha256
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|00b6ae78c03bbf9f572f7517cc4cfa15ff2f5d09b91dd2981a32b574e8c2789c
distribution:1
category:Payload installation
type:filename|sha512
value:%LOCALAPPDATA%\ow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C|38c02012b5c98efc8aedf52ba8c6c54047542fb1a9a1f251b5474964c342a10f180e1c6cde1fcbb718787a4edc862553ae4297aa23da45331c727c00c7834f3e
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:user-agent
value:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
distribution:1
category:Network activity
type:domain|ip
value:imgcache.qq.com|203.205.138.79
distribution:1
category:Network activity
type:domain|ip
value:localhost.ptlogin2.qq.com|127.0.0.1
distribution:1
category:Network activity
type:domain|ip
value:localhost.sec.qq.com|127.0.0.1
distribution:1
category:Network activity
type:domain|ip
value:ssl.captcha.qq.com|101.226.233.193
distribution:1
category:Network activity
type:domain|ip
value:tajs.qq.com|14.215.138.25
distribution:1
category:Network activity
type:domain|ip
value:ty.captcha.qq.com|125.39.83.11
distribution:1
category:Network activity
type:domain|ip
value:ui.ptlogin2.qq.com|203.205.142.186
distribution:1
category:Network activity
type:ip-dst
value:203.205.142.186
distribution:1
category:Network activity
type:ip-dst
value:14.215.138.25
distribution:1
category:Network activity
type:ip-dst
value:125.39.83.11
distribution:1
category:Network activity
type:ip-dst
value:203.205.138.79
distribution:1
category:Network activity
type:ip-dst
value:125.39.83.11
distribution:1
category:Network activity
type:ip-dst
value:14.215.138.25
distribution:1
category:Network activity
type:ip-dst
value:203.205.179.226
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP\UNCASINTRANET|00000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP\AUTODETECT|01000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP\UNCASINTRANET|00000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP\AUTODETECT|01000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\5.0\CACHE\CONTENT\CACHEPREFIX|0000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\5.0\CACHE\COOKIES\CACHEPREFIX|43006F006F006B00690065003A000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\5.0\CACHE\HISTORY\CACHEPREFIX|56006900730069007400650064003A000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\PROXYENABLE|00000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\CONNECTIONS\SAVEDLEGACYSETTINGS|46000000F10100000900000000000000000000000000000004000000000000003071E4E2286CD3010000000000000000000000000100000002000000C0A8F0D2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKLM\SOFTWARE\MICROSOFT\DIRECTDRAW\MOSTRECENTAPPLICATION\NAME|360036003500300064003100610062003500340063003200630036003300650036003600380063006500340039003900650066003800650037006200390033002E006500780065000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKLM\SOFTWARE\MICROSOFT\DIRECTDRAW\MOSTRECENTAPPLICATION\ID|2B2A565D
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKLM\SOFTWARE\MICROSOFT\DIRECTDRAW\MOSTRECENTAPPLICATION\NAME|360036003500300064003100610062003500340063003200630036003300650036003600380063006500340039003900650066003800650037006200390033002E006500780065000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKLM\SOFTWARE\MICROSOFT\DIRECTDRAW\MOSTRECENTAPPLICATION\ID|2B2A565D
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\{FD4316C2-FF33-42BF-BE78-39051EB67EC2}\WPADDECISIONREASON|01000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\{FD4316C2-FF33-42BF-BE78-39051EB67EC2}\WPADDECISIONTIME|B2AAA1307354D501
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\{FD4316C2-FF33-42BF-BE78-39051EB67EC2}\WPADDECISION|00000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\{FD4316C2-FF33-42BF-BE78-39051EB67EC2}\WPADNETWORKNAME|4E006500740077006F0072006B002000200033000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\00-00-5E-00-01-01\WPADDECISIONREASON|01000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\00-00-5E-00-01-01\WPADDECISIONTIME|B2AAA1307354D501
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\00-00-5E-00-01-01\WPADDECISION|00000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\00-00-5E-00-01-01\WPADDECISIONREASON|01000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\00-00-5E-00-01-01\WPADDECISIONTIME|B2AAA1307354D501
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\WPAD\00-00-5E-00-01-01\WPADDECISION|00000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\LOCAL SETTINGS\MUICACHE\A5\52C64B7E\LANGUAGELIST|65006E002D0055005300000065006E0000000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\LOCAL SETTINGS\MUICACHE\A5\52C64B7E\LANGUAGELIST|65006E002D0055005300000065006E0000000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\LOCAL SETTINGS\MUICACHE\A5\52C64B7E\LANGUAGELIST|65006E002D0055005300000065006E0000000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\LOCAL SETTINGS\MUICACHE\A5\52C64B7E\LANGUAGELIST|65006E002D0055005300000065006E0000000000
distribution:1
category:Persistence mechanism
type:regkey|value
value:HKCU\LOCAL SETTINGS\MUICACHE\A5\52C64B7E\LANGUAGELIST|65006E002D0055005300000065006E0000000000
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\ZonesCacheCounterMutex
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\ZonesLockedCacheCounterMutex
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\!IECompat!Mutex
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\__DDrawExclMode__
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\__DDrawCheckExclMode__
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\DDrawWindowListMutex
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\DDrawDriverObjectListMutex
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\DirectSound DllMain mutex (0x00000CDC)
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\{1B655094-FE2A-433c-A877-FF9793445069}
distribution:1
category:Artifacts dropped
type:mutex
value:Local\ZonesLockedCacheCounterMutex
distribution:1
category:Artifacts dropped
type:mutex
value:Local\DDrawWindowListMutex
distribution:1
category:Artifacts dropped
type:mutex
value:!IECompat!Mutex
distribution:1
category:Artifacts dropped
type:mutex
value:Local\DDrawDriverObjectListMutex
distribution:1
category:Artifacts dropped
type:mutex
value:Local\MSIMGSIZECacheMutex
distribution:1
category:Artifacts dropped
type:mutex
value:{1B655094-FE2A-433c-A877-FF9793445069}
distribution:1
category:Artifacts dropped
type:mutex
value:Local\__DDrawCheckExclMode__
distribution:1
category:Artifacts dropped
type:mutex
value:Local\ZonesCacheCounterMutex
distribution:1
category:Artifacts dropped
type:mutex
value:Local\__DDrawExclMode__
distribution:1
category:Artifacts dropped
type:mutex
value:Local\DirectSound DllMain mutex (0x00000CDC)
distribution:1
category:Artifacts dropped
type:mutex
value:\Sessions\1\BaseNamedObjects\Local\MSIMGSIZECacheMutex
distribution:1

เกี่ยวกับ VirSCAN | ข้อตกลงด้านความเป็นส่วนตัว | ติดต่อเรา | ลิงค์ที่เป็นมิตร | ช่วยเหลือ VirSCAN
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号